Malware

Malware.AI.3989696074 information

Malware Removal

The Malware.AI.3989696074 is considered dangerous by lots of security experts. When this infection is active, you may notice unwanted processes in Task Manager list. In this case, it is adviced to scan your computer with GridinSoft Anti-Malware.

GridinSoft Anti-Malware

Gridinsoft Anti-Malware

Removing PC viruses manually may take hours and may damage your PC in the process. We recommend using GridinSoft Anti-Malware for virus removal. Allows to complete scan and cure your PC during the trial period.
DOWNLOAD NOW
6-day free trial available.

What Malware.AI.3989696074 virus can do?

  • SetUnhandledExceptionFilter detected (possible anti-debug)
  • Yara rule detections observed from a process memory dump/dropped files/CAPE
  • Creates RWX memory
  • Dynamic (imported) function loading detected
  • CAPE extracted potentially suspicious content
  • Authenticode signature is invalid

How to determine Malware.AI.3989696074?



File Info:

name: C9D89764788C6F0B1E84.mlw
path: /opt/CAPEv2/storage/binaries/759389b16bd35c4d003b75a450d21315b54c67b83b8fa3c13744d25909d1963a
crc32: 21CDD009
md5: c9d89764788c6f0b1e8463040c5fca99
sha1: d372f742f078cca9eae3269c7ef631d719314d7a
sha256: 759389b16bd35c4d003b75a450d21315b54c67b83b8fa3c13744d25909d1963a
sha512: 662d94dd38f9d7b2dbaf486dd74cfed2b3d2e6befeba616b3549fcdc855dbc7f2b86478ea64a4517b31df520b4731ae60037f09562c2f00c0a0ca9888bb8497c
ssdeep: 384:aHaODWIpy7ySjTx7jRlhscVwSo3QZX3X47l3u0Y2Dp/EDHWb0nu79i1G+f7cijXC:NIpyPJ7jnhPVRIYHo74dWhED2AnhTc3
type: PE32 executable (GUI) Intel 80386, for MS Windows
tlsh: T149E25B1235E2D436E0734A3418B4D2715A3F7C926A74949F3B9816BE5FB26C08EBC35B
sha3_384: 66465e2bd0e21468cdfc760a1657b2b78ea3b38958c202e1114d8de9e22f51ea1a962a3e7e6df19359cedf30f4ce4969
ep_bytes: e83c140000e989feffff8bff558bec81
timestamp: 2021-11-21 08:18:16


Version Info:

0: [No Data]

Malware.AI.3989696074 also known as:

BkavW32.AIDetect.malware2
DrWebTrojan.DownLoad4.14627
McAfeeRDN/Generic.dx
CylanceUnsafe
AlibabaTrojan:Win32/CrypterX.39101673
BitDefenderThetaGen:NN.ZexaCO.34294.cuW@a043JVk
SymantecML.Attribute.HighConfidence
TrendMicro-HouseCallTROJ_GEN.R002C0PKR21
NANO-AntivirusVirus.Win32.Gen-Crypt.ccnc
AvastWin32:CrypterX-gen [Trj]
TrendMicroTROJ_GEN.R002C0PKR21
McAfee-GW-EditionRDN/Generic.dx
SentinelOneStatic AI – Suspicious PE
FireEyeGeneric.mg.c9d89764788c6f0b
SophosMal/Generic-S
IkarusTrojan.Crypt
eGambitUnsafe.AI_Score_99%
AviraTR/Crypt.XPACK.Gen7
MicrosoftTrojan:Win32/Wacatac.B!ml
CynetMalicious (score: 100)
VBA32Trojan.Download
MalwarebytesMalware.AI.3989696074
APEXMalicious
FortinetW32/PossibleThreat
AVGWin32:CrypterX-gen [Trj]
Cybereasonmalicious.2f078c
PandaTrj/Genetic.gen

How to remove Malware.AI.3989696074?

Malware.AI.3989696074 removal tool
  • Download and install GridinSoft Anti-Malware.
  • Open GridinSoft Anti-Malware and perform a “Standard scan“.
  • Move to quarantine” all items.
  • Open “Tools” tab – Press “Reset Browser Settings“.
  • Select proper browser and options – Click “Reset”.
  • Restart your computer.

You may also like

About the author

Paul Valéry

I'm a cyber security analyst and data science expert with 5+ years of experience with security software contractors.

View all posts

Leave a Comment